{ "id": "2ae2fe4a-c857-492d-88d9-6c6a496fd47b", "created_at": "2026-04-06T01:29:09.633442Z", "updated_at": "2026-04-10T03:21:30.415842Z", "deleted_at": null, "sha1_hash": "38c17a18e271812b75d7f5994df52652294ce7a5", "title": "RansomExx Leaks 52GB of Barcelona Health Centers' Data", "llm_title": "", "authors": "", "file_creation_date": "0001-01-01T00:00:00Z", "file_modification_date": "0001-01-01T00:00:00Z", "file_size": 224732, "plain_text": "RansomExx Leaks 52GB of Barcelona Health Centers' Data\r\nBy Mihir Bagwe\r\nArchived: 2026-04-06 00:52:49 UTC\r\nFraud Management \u0026 Cybercrime , Healthcare , Industry Specific\r\nConsorci Sanitari Integral Says It Is Fully Recovered From Ransomware Attack (MihirBagwe) • October 13, 2022\r\n   \r\nMoisès Broggi Hospital in Sant Joan Despí, one of the hospitals affected in the ransomware attack\r\n(Image: Xiscat)\r\nA ransomware gang says it published information including medical test results and identity cards stolen from a\r\nBarcelona hospital system that serves more than 1 million patients each year.\r\nSee Also: New Attacks. Skyrocketing Costs. The True Cost of a Security Breach.\r\nRansomExx says a 52-gigabyte file published Tuesday on the dark web contains data taken from the Consorci\r\nSanitari Integral, a public entity that provides medical and social services.\r\nCSI says it is working alongside the Cybersecurity Agency of Catalonia and the Catalan Data Protection Authority\r\nto limit the scope of the breach.\r\nThe hospital system of more than 3,000 physicians and staff acknowledged a \"compromise in data\r\nconfidentiality.\" It detected a ransomware attack during the early hours of Oct. 7, leading to three days of reduced\r\nfunctionality at the Barcelona hospitals Dos de Maig and Creu Roja de l'Hospitalet and the nearby Moisès Broggi\r\nhttps://www.bankinfosecurity.com/ransomexx-leaks-52-gb-barcelona-health-centers-data-a-20260\r\nPage 1 of 2\n\nfacility in Sant Joan Despí. Also affected were 10 other health centers, the majority of them in the city's southern\r\nsuburbs.\r\nSpanish newspaper El País reports that emergency services were unaffected but that medical equipment for\r\nspecialist visits, including X-ray machines, were unavailable.\r\nCatalonian public broadcaster Corporació Catalana de Mitjans Audiovisuals reported that staff at affected\r\nhospitals said they couldn't access computerized patient records, medication plans or diagnostic tests. The attack\r\nalso affected the email service of healthcare workers.\r\nCSI said on Tuesday it fully restored its systems using a backup copy from the cloud. Defenses including network\r\nsegmentation and firewalls limited the attack's impact, it said.\r\nSteps to restoration included updating more than 3,000 computers with new software and providing new\r\ncomputers for primary care centers.\r\nOn Sunday, the office of the president of the Government of Catalonia credited a speedy recovery already in\r\nprocess to a security plan developed two years earlier by the Cybersecurity Agency of Catalonia and the\r\ndepartment of health.\r\nSource: https://www.bankinfosecurity.com/ransomexx-leaks-52-gb-barcelona-health-centers-data-a-20260\r\nhttps://www.bankinfosecurity.com/ransomexx-leaks-52-gb-barcelona-health-centers-data-a-20260\r\nPage 2 of 2", "extraction_quality": 1, "language": "EN", "sources": [ "ETDA" ], "references": [ "https://www.bankinfosecurity.com/ransomexx-leaks-52-gb-barcelona-health-centers-data-a-20260" ], "report_names": [ "ransomexx-leaks-52-gb-barcelona-health-centers-data-a-20260" ], "threat_actors": [], "ts_created_at": 1775438949, "ts_updated_at": 1775791290, "ts_creation_date": 0, "ts_modification_date": 0, "files": { "pdf": "https://archive.orkl.eu/38c17a18e271812b75d7f5994df52652294ce7a5.pdf", "text": "https://archive.orkl.eu/38c17a18e271812b75d7f5994df52652294ce7a5.txt", "img": "https://archive.orkl.eu/38c17a18e271812b75d7f5994df52652294ce7a5.jpg" } }